Back to glossary

Data Exfiltration

Data exfiltration is the unauthorized transfer of data from a computer or other device. Threat actors typically exfiltrate data after a breach, while malicious insiders (also known as insider threats) may also gain unauthorized access to the data. Data thieves can exfiltrate data manually if they have physical access to it or, more commonly, by using malicious software to remotely automate the process.

To prevent data exfiltration, organizations should require strong passwords and multi-factor authentication (MFA), continuously monitor outbound data transfers, enforce strict access controls, establish threat detection procedures and response strategies, encrypt sensitive data, and employ data loss prevention (DLP) technologies. Employee training to recognize social engineering and phishing attacks can also reduce the risk of data exfiltration.

Stay in the Know

Get VikingCloud Resources, News & Views delivered straight to your inbox.

Subscribe
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Blogs

Stay up-to-date on the latest happenings in Cybersecurity and PCI Compliance.

Jun 3, 2026
Blog
Risk Management
Compliance
Blog
Jun 3, 2026

HIPAA Cybersecurity Requirements: A Guide for Covered Entities

Learn More
Jun 1, 2026
Blog
Threat Detection and Response
Risk Management
Blog
Jun 1, 2026

The Speed Gap: Why Your SOC Is Losing to AI-Driven Attacks

Learn More
May 11, 2026
Blog
Compliance
Cybersecurity
Penetration Testing
Vulnerability Scanning
Blog
May 11, 2026

The HIPAA Security Rule Is About to Change: What Healthcare CISOs Need to Do Before the Final Rule Drops

Learn More

Let's talk

Get started with a VikingCloud cybersecurity and compliance assessment with our cybersecurity experts.

Contact Us